package com.servlet.manager;

import java.io.IOException;
import java.io.PrintWriter;
import java.sql.SQLException;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

import com.dao.impl.UserDaoImpl;
import com.po.User;
import com.utils.MD5Util;
import com.utils.UUIDUtils;

public class LoginManager extends HttpServlet {

	/**
	 * The doGet method of the servlet. <br>
	 *
	 * This method is called when a form has its tag value method equals to get.
	 * 
	 * @param request the request send by the client to the server
	 * @param response the response send by the server to the client
	 * @throws ServletException if an error occurred
	 * @throws IOException if an error occurred
	 */
	public void doGet(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
		doPost(request, response);
	}

	/**
	 * The doPost method of the servlet. <br>
	 *
	 * This method is called when a form has its tag value method equals to post.
	 * 
	 * @param request the request send by the client to the server
	 * @param response the response send by the server to the client
	 * @throws ServletException if an error occurred
	 * @throws IOException if an error occurred
	 */
	@SuppressWarnings("static-access")
	public void doPost(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
		request.setCharacterEncoding("utf-8");
		response.setCharacterEncoding("utf-8");
		String username = request.getParameter("username");
		String password = request.getParameter("password");
		String code_text1 = request.getParameter("code_text");
		if ("".equals(username)||"".equals(password)||username==null||password==null) {
			request.setAttribute("back", "输入有误");
			request.getRequestDispatcher("/loginmanager.jsp").forward(request, response);
			return;
		}
		System.out.println(code_text1);	
		HttpSession session = request.getSession();
		session.setMaxInactiveInterval(30*60);
		String code_text2 = (String) session.getAttribute("code_text");
		System.out.println(code_text2);
		try {
			User u = new UserDaoImpl().findByName(username);
			if ((new MD5Util().getMD5(password)).equals(u.getUpwd()) &&
					code_text1.equals(code_text2)) {
				session.setAttribute("Manager", u);
				if (u.getUtype().equals("root")||u.getUtype().equals("editor")) {
					request.getRequestDispatcher("/WEB-INF/manage/manager.jsp").forward(request, response);	
				}else if(u.getUtype().equals("ordinary")){
					request.getRequestDispatcher("/index.jsp").forward(request, response);	
				}
							
			}else {
				request.setAttribute("back", "输入有误");
				request.getRequestDispatcher("/loginmanager.jsp").forward(request, response);
			}
		} catch (SQLException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}
		
	}

}
